Studying resilient cyber incident management from large-scale cyber security training

Aoyama, Tomomi; Naruoka, Hidemasa; Koshijima, Ichiro; Machii, Wataru; Seki, Kazuhiko

doi:10.1109/ascc.2015.7244713

Cited by 6 publications

(2 citation statements)

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…However, these definitions have some fundamental differences. Several studies have been conducted on cyber resilience at the organisational level, such as those in [7]- [10] defined cyber resilience as an organisation's ability to defend against cyber-attacks based on three factors: prevention, detection, and response. Each of these factors has a specific resilience factor: prevention for anticipating, detection for monitoring and learning, and incident reporting response.…”

Section: Definitions Of Cyber Resiliencementioning

confidence: 99%

Towards a Cyber Resilience Quantification Framework (Crqf) for it Infrastructure

AlHidaifi,

Asghar,

Ansari

2023

Preprint

View full text Add to dashboard Cite

Section: Definitions Of Cyber Resiliencementioning

confidence: 99%

Towards a Cyber Resilience Quantification Framework (Crqf) for it Infrastructure

AlHidaifi,

Asghar,

Ansari

2023

Preprint

View full text Add to dashboard Cite

“…These concerns about including the anticipate, detect, withstand, recover, and evolve [20], [23], [25], [27] lifecycle and the inclusion of humans into cybersecurity have led to an emerging new approach called cyber resilience [20], [22], [24], [27], [28]. Although some authors consider cyber resilience a part of cybersecurity that is concerned with response [22], [35], [36], other authors consider cyber resilience a more holistic concept that includes the whole lifecycle ( Figure 1) and that includes strategic and human processes into cybersecurity [20], [23], [27], [28]. This ambiguity of the cyber resilience concept may be due to the continuously changing cybersecurity concept throughout the past few decades [30], [35], [37].…”

Section: State Of the Artmentioning

confidence: 99%

Systematic Approach to Cyber Resilience Operationalization in SMEs

et al. 2020

View full text Add to dashboard Cite

The constantly evolving cyber threat landscape is a latent problem for today's companies. This is especially true for the Small and Medium-sized Enterprises (SMEs) because they have limited resources to face the threats but, as a group, represent an extensive payload for cybercriminals to exploit. Moreover, the traditional cybersecurity approach of protecting against known threats cannot withstand the rapidly evolving technologies and threats used by cybercriminals. This study claims that cyber resilience, a more holistic approach to cybersecurity, could help SMEs anticipate, detect, withstand, recover from and evolve after cyber incidents. However, to operationalize cyber resilience is not an easy task, and thus, the study presents a framework with a corresponding implementation order for SMEs that could help them implement cyber resilience practices. The framework is the result of using a variation of Design Science Research in which Grounded Theory was used to induce the most important actions required to implement cyber resilience and an iterative evaluation from experts to validate the actions and put them in a logical order. Therefore, this study proposes that the framework could benefit SME managers to understand cyber resilience, as well as help them start implementing it with concrete actions and an order dictated by the experience of experts. This could potentially ease cyber resilience implementation for SMEs by making them aware of what cyber resilience implies, which dimensions it includes and what actions can be implemented to increase their cyber resilience.

show abstract

Developing a Cyber Incident Communication Management Exercise for CI Stakeholders

Aoyama

Watanabe

Koshijima

et al. 2017

Critical Information Infrastructures Security

View full text Add to dashboard Cite

Studying resilient cyber incident management from large-scale cyber security training

Cited by 6 publications

References 0 publications

Towards a Cyber Resilience Quantification Framework (Crqf) for it Infrastructure

Towards a Cyber Resilience Quantification Framework (Crqf) for it Infrastructure

Systematic Approach to Cyber Resilience Operationalization in SMEs

Developing a Cyber Incident Communication Management Exercise for CI Stakeholders

Contact Info

Product

Resources

About